Language Selection

English French German Italian Portuguese Spanish

Decade-old flaw could affect Linux, Macs

Filed under
Security

Patches have been released for file-networking protocol software, Samba, revealing that the software, which is used extensively in Macs and Linux, has been subject to a critical vulnerability for almost a decade.

The security advisory released by the Samba team reveals that the vulnerability makes it possible for a remote, unauthenticated user to send a specially crafted remote procedure call that will create multiple buffer overflows in the Samba server. This would allow a malicious user to crash the service, or possibly execute arbitrary code with root user privileges.

The most recent stable release of Samba prior to the patch, version 3.6.3, is susceptible.

rest here




More in Tux Machines

Ubuntu BQ Aquaris M10 Review – Part 1: Hardware

The mobile market today has practically been what former Microsoft-then-Nokia-then-Microsoft-again exec Stephen Elop loved to refer to as a two-horse race. Android and iOS have been butting heads quarter after quarter, year after year. Despite their popularity and ubiquity, neither is truly perfect and neither can really meet everyone's needs and preferences. Which leaves a little wiggle room for other platforms (that includes Windows 10) to try and fill in the gaps. This time around we are going to take a closer look at one the newer challengers, Ubuntu Touch, as it is embodied in the recent bq Aquaris M10 tablet. How does it fare against the bevy of Android, iOS, and even Windows tablets scattered throughout the market? And does it have what it takes to not only stand tall and proud but also to survive? Read on to find our verdict. Read more

Open source is in our DNA

The same thing that compels us to make Linux (and many other projects) free and open source is present in many of humanity's greatest achievements Read more

Debian Is Dropping Support for VLC Media Player, Mediawiki for Wheezy LTS

The Debian Long Term Support (LTS) developers have announced that they are dropping support for certain packages as part of the extended life cycle for the Debian GNU/Linux 7 "Wheezy" operating system. Read more

Hands on: What's new and noteworthy with Android N

With Google's I/O developers' conference behind us, it's time to start looking forward to what's next in the world of Android. The most prominent thing is Google's rapidly approaching Android release, currently known only as Android "N." (The company has yet to reveal the full name or version number.) While the software itself isn't expected to arrive until sometime this summer, we're getting an increasingly clear picture of the fresh features and improvements it'll provide. Read more